$ rpki-client -vvf rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/A98F7960A41F11F0A133244EC4F9AE02.roa File: A98F7960A41F11F0A133244EC4F9AE02.roa (raw, json) Hash identifier: clywZEJBg6KMkDyy39k1K/Vi/9GWbE2Gjn5u83tI7EA= Subject key identifier: 68:FB:7F:87:4D:6E:7F:29:3C:A4:F5:E6:67:A1:32:ED:ED:92:EC:73 Certificate issuer: /CN=A918404E/serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162 Certificate serial: 096F Authority key identifier: 9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/A98F7960A41F11F0A133244EC4F9AE02.roa Signing time: Wed 08 Oct 2025 08:20:34 +0000 ROA not before: Wed 08 Oct 2025 08:20:34 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 6453 IP address blocks: 45.117.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:04:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2415 (0x96f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918404E, serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162 Validity Not Before: Oct 8 08:20:34 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68e61ed2-662d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a6:b5:ee:a0:f4:40:c0:7c:b3:c5:27:3a:62: b2:bb:4e:97:bc:1f:59:dc:fd:81:bb:35:c2:99:8c: 56:17:77:0d:62:e8:9a:f8:f8:06:ef:96:65:e4:e0: 17:45:00:84:70:11:09:4e:9d:e4:6c:4d:85:b4:cc: 8e:02:95:0d:6d:4c:44:18:bc:ea:5d:2b:2c:fe:31: 20:1e:bc:e4:09:3d:97:2f:25:28:27:6a:0f:6d:76: 0a:e0:0f:23:59:03:9f:74:90:2e:06:40:06:f4:42: 68:85:51:a2:b6:6b:22:bd:37:2e:40:f8:18:00:d8: 10:a9:a0:14:18:38:da:75:f3:b1:fb:03:c7:43:4b: 47:7c:cf:44:68:88:f5:2a:26:a8:17:a4:b2:60:6f: 8e:f9:9d:00:32:cf:2e:e6:33:15:7f:e5:78:29:4e: 90:ef:6a:93:6c:c7:3f:5c:32:cb:15:bf:24:34:94: 28:9d:13:c1:94:eb:b9:75:07:76:ab:97:b5:99:4e: bf:cf:9a:eb:d0:65:5c:43:82:9c:36:7f:49:ed:d8: 66:04:74:f6:b8:14:9b:fe:a3:d6:a2:f6:f5:70:82: a9:c5:33:15:9f:a9:20:9b:ed:e0:18:05:a3:9f:b9: f9:68:d9:5f:d7:08:b8:fc:1f:d9:45:f1:6f:6a:5b: 3e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FB:7F:87:4D:6E:7F:29:3C:A4:F5:E6:67:A1:32:ED:ED:92:EC:73 X509v3 Authority Key Identifier: keyid:9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/A98F7960A41F11F0A133244EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.203.0/24 Signature Algorithm: sha256WithRSAEncryption 92:c2:3b:ab:ce:fc:91:82:ac:87:a8:00:62:73:ee:73:bc:f3: 08:78:79:0c:41:bf:6e:39:f3:33:79:48:46:62:e0:c0:f6:22: 81:15:cf:18:b3:11:68:26:29:3e:15:bb:d6:83:22:e5:a6:b5: 11:1c:54:e1:a0:6f:15:ea:24:7d:75:5d:e3:39:7f:13:c8:f1: 37:8c:13:c1:56:02:76:28:e3:45:a2:67:e5:e4:a6:c1:d7:c3: 52:1f:d3:08:ac:4e:e7:f5:0f:6f:a6:5c:d8:11:67:f4:5d:88: 23:1f:71:72:6d:a0:d7:13:06:61:0d:f8:83:d9:8e:51:20:62: fc:a7:4c:eb:b8:2c:f2:12:05:4f:2d:57:6b:d6:65:be:91:b4: ca:52:9f:01:50:7a:53:46:55:5c:95:19:a2:1a:3f:f5:61:83: 42:68:b9:34:2e:82:b8:dd:7f:01:16:5e:82:73:d3:70:3e:3a: de:61:1f:0f:e0:5c:56:6a:f0:15:7c:5d:01:57:3d:fc:c4:91: 33:4e:3c:f9:30:1f:b5:73:96:0e:85:56:ec:f2:8a:13:1b:b7: 1d:94:37:64:19:7f:dc:52:71:31:05:bf:45:f6:23:dd:20:68: 52:90:9b:b3:d8:03:73:a4:6d:f2:c9:75:12:88:92:89:bf:4f: 5e:e2:3e:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwNEUxMTAvBgNVBAUTKDlDN0M3NzZGNkJGNjAwMzI4M0YwQ0FCNDNFMkRDNjE0 OTQ5OTcxNjIwHhcNMjUxMDA4MDgyMDM0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2MWVkMi02NjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6a17qD0QMB8s8UnOmKyu06XvB9Z3P2BuzXCmYxWF3cNYuia+PgG75Zl5OAX RQCEcBEJTp3kbE2FtMyOApUNbUxEGLzqXSss/jEgHrzkCT2XLyUoJ2oPbXYK4A8j WQOfdJAuBkAG9EJohVGitmsivTcuQPgYANgQqaAUGDjadfOx+wPHQ0tHfM9EaIj1 KiaoF6SyYG+O+Z0AMs8u5jMVf+V4KU6Q72qTbMc/XDLLFb8kNJQonRPBlOu5dQd2 q5e1mU6/z5rr0GVcQ4KcNn9J7dhmBHT2uBSb/qPWovb1cIKpxTMVn6kgm+3gGAWj n7n5aNlf1wi4/B/ZRfFvals+fwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGj7f4dN bn8pPKT15mehMu3tkuxzMB8GA1UdIwQYMBaAFJx8d29r9gAyg/DKtD4txhSUmXFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDA0RS9CQzAzMEM3NkYx REExMUVBQUZDNkM3MEFDNEY5QUUwMi9uSHgzYjJ2MkFES0Q4TXEwUGkzR0ZKU1pj V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25IeDNiMnYyQURLRDhNcTBQaTNHRkpTWmNXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwNEUvQkMwMzBDNzZGMURBMTFFQUFGQzZDNzBBQzRGOUFFMDIvQTk4Rjc5NjBB NDFGMTFGMEExMzMyNDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtdcswDQYJKoZIhvcNAQELBQADggEBAJLCO6vO/JGCrIeo AGJz7nO88wh4eQxBv2458zN5SEZi4MD2IoEVzxizEWgmKT4Vu9aDIuWmtREcVOGg bxXqJH11XeM5fxPI8TeME8FWAnYo40WiZ+XkpsHXw1If0wisTuf1D2+mXNgRZ/Rd iCMfcXJtoNcTBmEN+IPZjlEgYvynTOu4LPISBU8tV2vWZb6RtMpSnwFQelNGVVyV GaIaP/Vhg0JouTQugrjdfwEWXoJz03A+Ot5hHw/gXFZq8BV8XQFXPfzEkTNOPPkw H7Vzlg6FVuzyihMbtx2UN2QZf9xScTEFv0X2I90gaFKQm7PYA3OkbfLJdRKIkom/ T17iPqU= -----END CERTIFICATE-----Generated at Mon Oct 20 02:05:11 2025 by rpki-client